T84A Posted December 15, 2013 ID:764752 Share Posted December 15, 2013 Hope to resolve this. I think I got it when I downloaded a program that was supposed let me use my webcam stream as a screensaver. I also could not use System Restore. I hope to resolve both. Windows XP DDS (Ver_2012-11-20.01) - NTFS_x86Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.45.2Run by Kenneth Earle at 9:38:10 on 2013-12-15Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2992.1846 [GMT -5:00].AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}.============== Running Processes ================.C:\WINDOWS\system32\nvsvc32.exec:\Program Files\Microsoft Security Client\MsMpEng.exeC:\Program Files\Intel\WiFi\bin\S24EvMon.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\System32\SCardSvr.exeC:\WINDOWS\system32\agrsmsvc.exeC:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exeC:\Program Files\Intel\WiFi\bin\EvtEng.exec:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exeC:\WINDOWS\system32\RUNDLL32.EXEC:\WINDOWS\system32\00THotkey.exeC:\WINDOWS\RTHDCPL.EXEC:\Program Files\TOSHIBA\ConfigFree\NDSTray.exeC:\Program Files\Apoint2K\Apoint.exeC:\Program Files\Apoint2K\ApMsgFwd.exeC:\Program Files\TOSHIBA\TME3\TMERzCtl.EXEC:\Program Files\ltmoh\Ltmoh.exeC:\Program Files\Java\jre7\bin\jqs.exeC:\Program Files\TOSHIBA\TouchED\TouchED.exeC:\Program Files\Apoint2K\Apntex.exeC:\Program Files\Apoint2K\HidFind.exeC:\Program Files\Jump Desktop\JumpService.exeC:\Program Files\Intel\WiFi\bin\ZCfgSvc.exeC:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exeC:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exeC:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exeC:\WINDOWS\system32\thpsrv.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exeC:\Program Files\TOSHIBA\TOSHIBA Controls\TFncKy.exeC:\WINDOWS\system32\TFNF5.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exeC:\WINDOWS\system32\TPSODDCtl.exeC:\Program Files\DSC\DLS IV\MCPH\MCPH.exeC:\Program Files\TOSHIBA\Wireless Hotkey\TosHKCW.exeC:\WINDOWS\system32\TPSBattM.exeC:\Program Files\TOSHIBA\TOSHIBA Direct Disc Writer\ddwmon.exeC:\WINDOWS\system32\nlssrv32.exeC:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exeC:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exeC:\Program Files\Sony\PMB\PMBVolumeWatcher.exeC:\Program Files\Common Files\Intuit\DataProtect\QBIDPService.exeC:\Program Files\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exeC:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exeC:\Program Files\Browny02\Brother\BrStMonW.exeC:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exeC:\Program Files\Common Files\Java\Java Update\jusched.exeC:\Program Files\TOSHIBA\RSelect\RSelSvc.exeC:\Program Files\Microsoft Security Client\msseces.exeC:\WINDOWS\system32\ThpSrv.exeC:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exeC:\Program Files\TOSHIBA\TME3\Tmesrv31.exeC:\Program Files\iTunes\iTunesHelper.exeC:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exeC:\Program Files\TOSHIBA\TME3\TMEEJME.EXEC:\Program Files\Western Digital\WD Quick View\WDDMStatus.exeC:\WINDOWS\system32\TODDSrv.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exeC:\Program Files\1&1\1&1 EasyLogin\EasyLogin.exeC:\Program Files\TightVNC\tvnserver.exeC:\Program Files\Jump Desktop\JumpDesktop.exeC:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exeC:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exeC:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exeC:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exeC:\Program Files\Browny02\BrYNSvc.exeC:\WINDOWS\system32\wbem\unsecapp.exeC:\WINDOWS\system32\wbem\wmiprvse.exeC:\WINDOWS\system32\wbem\unsecapp.exeC:\WINDOWS\system32\wbem\wmiprvse.exeC:\WINDOWS\system32\wscntfy.exeC:\Program Files\iPod\bin\iPodService.exeC:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exeC:\Program Files\TOSHIBA\TPHM\TPCHSrv.exeC:\WINDOWS\System32\alg.exeC:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exeC:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exeC:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exeC:\WINDOWS\system32\wbem\wmiapsrv.exeC:\WINDOWS\system32\wuauclt.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\WINDOWS\System32\svchost.exe -k netsvcsC:\WINDOWS\system32\svchost.exe -k WudfServiceGroupC:\WINDOWS\system32\svchost.exe -k NetworkServiceC:\WINDOWS\system32\svchost.exe -k LocalServiceC:\WINDOWS\system32\svchost.exe -k LocalServiceC:\WINDOWS\system32\svchost.exe -k imgsvc.============== Pseudo HJT Report ===============.uURLSearchHooks: appbario19 Toolbar: {b7c7d4b0-7a84-4b73-a7ef-48ef59a52c3b} - c:\program files\appbario19\prxtbappb.dllBHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dllBHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - <orphaned>BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dllBHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dllBHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dllBHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dllBHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.9012.1008\swg.dllBHO: appbario19 Toolbar: {b7c7d4b0-7a84-4b73-a7ef-48ef59a52c3b} - c:\program files\appbario19\prxtbappb.dllBHO: Speed Test 137: {D914C54F-2DB8-48CB-9479-9A2E5EA78F07} - c:\program files\speed test 137\ScriptHost.dllBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dllTB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dllTB: appbario19 Toolbar: {B7C7D4B0-7A84-4B73-A7EF-48EF59A52C3B} - c:\program files\appbario19\prxtbappb.dllTB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dllTB: appbario19 Toolbar: {b7c7d4b0-7a84-4b73-a7ef-48ef59a52c3b} - c:\program files\appbario19\prxtbappb.dlluRun: [ctfmon.exe] c:\windows\system32\ctfmon.exeuRun: [1&1 EasyLogin] c:\program files\1&1\1&1 easylogin\EasyLogin.exeuRun: [Jump Desktop] c:\program files\jump desktop\JumpDesktop.exe autorunuRun: [iCloudServices] c:\program files\common files\apple\internet services\iCloudServices.exeuRun: [searchProtect] c:\documents and settings\kenneth earle\application data\searchprotect\bin\cltmng.exeuRun: [pcreg] c:\program files\pcreg\service.exemRun: [iMSS] "c:\program files\intel\intel® management engine components\imss\PIconStartup.exe"mRun: [nwiz] nwiz.exe /installquietmRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInitmRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartupmRun: [00THotkey] c:\windows\system32\00THotkey.exemRun: [000StTHK] 000StTHK.exemRun: [RTHDCPL] RTHDCPL.EXEmRun: [NDSTray.exe] NDSTray.exemRun: [Apoint] c:\program files\apoint2k\Apoint.exemRun: [iTSecMng] c:\program files\toshiba\bluetooth toshiba stack\ItSecMng.exe /STARTmRun: [TMERzCtl.EXE] c:\program files\toshiba\tme3\TMERzCtl.EXE /ServicemRun: [TMESRV.EXE] c:\program files\toshiba\tme3\TMESRV31.EXE /LogonmRun: [TWebCamera] "c:\program files\toshiba\toshiba web camera application\TWebCamera.exe" autorunmRun: [LtMoh] c:\program files\ltmoh\Ltmoh.exemRun: [TouchED] c:\program files\toshiba\touched\TouchED.exemRun: [intelZeroConfig] "c:\program files\intel\wifi\bin\ZCfgSvc.exe"mRun: [intelWireless] "c:\program files\common files\intel\wirelesscommon\iFrmewrk.exe" /tf Intel Wireless TraymRun: [TOSDCR] TOSDCR.EXEmRun: [ToshibaServiceStation] "c:\program files\toshiba\toshiba service station\ToshibaServiceStation.exe" /hide:60mRun: [TosWaitSrv] c:\program files\toshiba\tphm\TosWaitSrv.exemRun: [ThpSrv] c:\windows\system32\thpsrv /logonmRun: [TFncKy] TFncKy.exemRun: [TFNF5] TFNF5.exemRun: [smoothView] c:\program files\toshiba\toshiba zooming utility\SmoothView.exemRun: [TPSODDCtl] TPSODDCtl.exemRun: [TPSMain] TPSMain.exemRun: [TosHKCW.exe] "c:\program files\toshiba\wireless hotkey\TosHKCW.exe"mRun: [TosSENotify] c:\program files\toshiba\toshiba hdd ssd alert\TosWaitSrv.exemRun: [DDWMon] c:\program files\toshiba\toshiba direct disc writer\\ddwmon.exemRun: [TUSBSleepChargeSrv] c:\program files\toshiba\toshiba usb sleep and charge utility\TUSBSleepChargeSrv.exemRun: [NortonOnlineBackupReminder] "c:\program files\toshiba\toshiba online backup\activation\TobuActivation.exe" UNATTENDEDmRun: [intuit SyncManager] c:\program files\common files\intuit\sync\IntuitSyncManager.exe startupmRun: [tvncontrol] "c:\program files\tightvnc\tvnserver.exe" -controlservice -slavemRun: [PMBVolumeWatcher] c:\program files\sony\pmb\PMBVolumeWatcher.exemRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"mRun: [Wondershare Helper Compact.exe] c:\program files\common files\wondershare\wondershare helper compact\WSHelper.exemRun: [brStsMon00] c:\program files\browny02\brother\BrStMonW.exe /AUTORUNmRun: [ControlCenter4] c:\program files\controlcenter4\BrCcBoot.exe /autorunmRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottimemRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkeymRun: [WD Drive Unlocker] c:\program files\western digital\wd security\WDDriveAutoUnlock.exemRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"mRun: [WD Quick View] c:\program files\western digital\wd quick view\WDDMStatus.exedRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -tuPolicies-Explorer: NoDriveTypeAutoRun = dword:145mPolicies-System: ConsentPromptBehaviorAdmin = dword:0mPolicies-System: ConsentPromptBehaviorUser = dword:0mPolicies-System: EnableLUA = dword:0mPolicies-Explorer: NoDriveTypeAutoRun = dword:145IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dllIE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dllIE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exeIE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exeTCP: NameServer = 75.75.75.75 75.75.76.76TCP: Interfaces\{77CA52E4-94F5-4748-BB2D-D257C5A25284} : DHCPNameServer = 75.75.75.75 75.75.76.76Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dllHandler: intu-help-qb4 - {ACE22922-D07C-4860-B51B-8CF472FEC2CB} - c:\program files\intuit\quickbooks 2011\HelpAsyncPluggableProtocol.dllHandler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} -Name-Space Handler: ftp\* - {419A0123-4312-1122-A0C0-434FDA6DA542} - c:\program files\coreftp\pftpns.dllSSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dllSEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll.================= FIREFOX ===================.FF - ProfilePath - c:\documents and settings\kenneth earle\application data\mozilla\firefox\profiles\ze6g6fdu.default-1359054047765\FF - plugin: c:\documents and settings\kenneth earle\application data\mozilla\firefox\profiles\ze6g6fdu.default-1359054047765\extensions\{1bc9ba34-1eed-42ca-a505-6d2f1a935bbb}\plugins\npietab2.dllFF - plugin: c:\documents and settings\kenneth earle\application data\mozilla\firefox\profiles\ze6g6fdu.default-1359054047765\extensions\{1bc9ba34-1eed-42ca-a505-6d2f1a935bbb}\plugins\npietab2_x64.dllFF - plugin: c:\documents and settings\kenneth earle\application data\mozilla\firefox\profiles\ze6g6fdu.default-1359054047765\extensions\logmeinclient@logmein.com\plugins\npRACtrl.dllFF - plugin: c:\documents and settings\kenneth earle\local settings\application data\citrix\plugins\104\npappdetector.dllFF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dllFF - plugin: c:\program files\canon\easy-photoprint ex\NPEZFFPI.DLLFF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dllFF - plugin: c:\program files\google\update\1.3.22.3\npGoogleUpdate3.dllFF - plugin: c:\program files\java\jre7\bin\dtplugin\npdeployJava1.dllFF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dllFF - plugin: c:\program files\microsoft silverlight\5.1.20913.0\npctrlui.dllFF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dllFF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_9_900_170.dllFF - ExtSQL: 2013-12-14 12:25; {b7c7d4b0-7a84-4b73-a7ef-48ef59a52c3b}; c:\documents and settings\kenneth earle\application data\mozilla\firefox\profiles\ze6g6fdu.default-1359054047765\extensions\{b7c7d4b0-7a84-4b73-a7ef-48ef59a52c3b}.============= SERVICES / DRIVERS ===============.R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2013-6-18 214696]R0 Thpdrv;TOSHIBA HDD Protection Driver;c:\windows\system32\drivers\thpdrv.sys [2009-6-29 29760]R0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;c:\windows\system32\drivers\Thpevm.sys [2009-5-11 6528]R1 TMEI3E;TMEI3E;c:\windows\system32\drivers\TMEI3E.sys [2011-6-15 5888]R2 JumpDesktop;Jump Desktop Service;c:\program files\jump desktop\JumpService.exe [2012-5-18 7680]R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-10-8 418376]R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-6-15 701512]R2 MCPH;DSC MCPH Service;c:\program files\dsc\dls iv\mcph\MCPH.exe [2013-4-24 215040]R2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\system32\NLSSRV32.EXE [2011-3-21 68928]R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files\sony\pmb\PMBDeviceInfoProvider.exe [2011-3-15 428384]R2 QBVSS;QBIDPService;c:\program files\common files\intuit\dataprotect\QBIDPService.exe [2011-6-30 1248256]R2 rimspci;rimspci;c:\windows\system32\drivers\rimspe86.sys [2011-6-15 47104]R2 risdpcie;risdpcie;c:\windows\system32\drivers\risdpe86.sys [2011-6-15 48128]R2 rixdpcie;rixdpcie;c:\windows\system32\drivers\rixdpe86.sys [2011-6-15 38400]R2 RSELSVC;TOSHIBA Modem region select service;c:\program files\toshiba\rselect\RSelSvc.exe [2009-7-7 62832]R2 tdudf;TOSHIBA UDF File System Driver;c:\windows\system32\drivers\tdudf.sys [2007-3-26 105856]R2 Tmesrv;Tmesrv3;c:\program files\toshiba\tme3\TMESRV31.exe [2011-6-15 126976]R2 trudf;TOSHIBA DVD-RAM UDF File System Driver;c:\windows\system32\drivers\trudf.sys [2007-2-19 134016]R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\drivers\TVALZFL.sys [2008-4-30 4992]R2 tvnserver;TightVNC Server;c:\program files\tightvnc\tvnserver.exe [2010-7-8 815704]R2 UNS;Intel® Management & Security Application User Notification Service;c:\program files\intel\intel® management engine components\uns\UNS.exe [2011-6-15 2320920]R2 WDBackup;WD Backup;c:\program files\western digital\wd smartware\WDBackupEngine.exe [2013-11-2 1042808]R2 WDDriveService;WD Drive Manager;c:\program files\western digital\wd drive manager\WDDriveService.exe [2013-11-2 270704]R3 BrYNSvc;BrYNSvc;c:\program files\browny02\BrYNSvc.exe [2012-11-2 245760]R3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\drivers\e1k5132.sys [2011-6-15 160424]R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [2011-6-15 44800]R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2011-6-15 132352]R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-6-15 22856]R3 PGEffect;Pangu effect driver;c:\windows\system32\drivers\PGEffect.sys [2011-6-15 24064]R3 TMachInfo;TMachInfo;c:\program files\toshiba\toshiba service station\TMachInfo.exe [2011-6-15 54136]R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\toshiba\toshiba hdd ssd alert\TosSmartSrv.exe [2009-11-5 111960]R3 TPCHSrv;TPCH Service;c:\program files\toshiba\tphm\TPCHSrv.exe [2010-2-5 677232]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]S2 Norton PC Checkup Application Launcher;Norton PC Checkup Application Launcher;c:\program files\pc checkup\symcpcculaunchsvc.exe /s --> c:\program files\pc checkup\SymcPCCULaunchSvc.exe [?]S2 PCCUJobMgr;Common Client Job Manager Service;"c:\program files\norton pc checkup\engine\2.0.3.198\ccsvchst.exe" /s "pccujobmgr" /m "c:\program files\norton pc checkup\engine\2.0.3.198\dimaster.dll" /prefetch:1 --> c:\program files\norton pc checkup\engine\2.0.3.198\ccSvcHst.exe [?]S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2011-6-15 1684736]S3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver;c:\windows\system32\drivers\atswpwdf.sys --> c:\windows\system32\drivers\ATSwpWDF.sys [?]S3 EdgeSer;Edgeport Driver for Windows 2000, XP, Vista & Server 2003;c:\windows\system32\drivers\edgeser.sys [2013-8-4 229376]S3 ivusb;Initio Driver for USB Default Controller;c:\windows\system32\drivers\ivusb.sys [2010-7-28 25112]S3 NANMp50;NANMp50 NDIS Protocol Driver;c:\windows\system32\drivers\NANMp50.sys [2012-8-8 36280]S3 NANSp50;NANSp50 NDIS Protocol Driver;c:\windows\system32\drivers\NANSp50.sys [2012-8-8 35256]S3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\drivers\netaapl.sys [2011-6-15 18432]S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2008-5-6 11520]S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2010-3-30 14336]S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-7-20 754856].=============== Created Last 30 ================.2013-12-15 06:42:38 7772552 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{75c01650-b1c8-4b91-8e74-0fc8b3e765b0}\mpengine.dll2013-12-15 04:17:34 7772552 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll2013-12-15 00:56:12 -------- dc-h--w- c:\windows\ie82013-12-14 17:26:42 -------- d-----w- c:\program files\pcreg2013-12-14 17:26:40 -------- d-----w- c:\program files\wrapper_inst2013-12-14 17:26:25 -------- d-----w- c:\program files\Speed Test 1372013-12-14 17:26:22 -------- d-----w- c:\documents and settings\kenneth earle\application data\speedtest1372013-12-14 17:26:12 -------- d-----w- c:\program files\Conduit2013-12-14 17:26:09 -------- d-----w- c:\documents and settings\kenneth earle\local settings\application data\appbario192013-12-14 17:26:08 -------- d-----w- c:\documents and settings\all users\application data\Conduit2013-12-14 17:26:06 -------- d-----w- c:\program files\appbario192013-12-14 17:26:06 -------- d-----w- c:\documents and settings\kenneth earle\local settings\application data\Conduit2013-12-14 17:25:28 -------- d-----w- c:\program files\SearchProtect2013-12-14 17:25:07 -------- d-----w- c:\documents and settings\kenneth earle\application data\SearchProtect2013-12-13 18:23:11 -------- d-----w- c:\program files\Citrix2013-12-13 18:22:56 -------- d-----w- c:\documents and settings\kenneth earle\local settings\application data\Citrix2013-11-28 13:24:03 -------- d-----w- c:\documents and settings\all users\application data\Package Cache.==================== Find3M ====================.2013-12-11 14:23:16 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe2013-12-11 14:23:15 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl2013-11-19 10:21:30 230048 ------w- c:\windows\system32\MpSigStub.exe2013-11-13 02:59:42 150528 ----a-w- c:\windows\system32\imagehlp.dll2013-11-07 05:38:51 591360 ----a-w- c:\windows\system32\rpcrt4.dll2013-11-06 01:03:31 7168 ----a-w- c:\windows\system32\xpsp4res.dll2013-10-30 02:26:17 1879040 ----a-w- c:\windows\system32\win32k.sys2013-10-29 07:57:34 920064 ----a-w- c:\windows\system32\wininet.dll2013-10-29 07:57:33 43520 ----a-w- c:\windows\system32\licmgr10.dll2013-10-29 07:57:33 18944 ----a-w- c:\windows\system32\corpol.dll2013-10-29 07:57:33 1469440 ----a-w- c:\windows\system32\inetcpl.cpl2013-10-29 00:45:02 385024 ----a-w- c:\windows\system32\html.iec2013-10-23 23:45:49 172032 ----a-w- c:\windows\system32\scrrun.dll2013-10-12 15:56:19 278528 ----a-w- c:\windows\system32\oakley.dll2013-10-09 13:12:48 287744 ----a-w- c:\windows\system32\gdi32.dll2013-10-08 11:50:41 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll2013-10-08 11:29:36 145408 ----a-w- c:\windows\system32\javacpl.cpl2013-10-07 10:59:21 603136 ----a-w- c:\windows\system32\crypt32.dll2013-09-27 14:53:06 214696 ----a-w- c:\windows\system32\drivers\MpFilter.sys.============= FINISH: 9:39:17.51 =============== .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows XP ProfessionalBoot Device: \Device\HarddiskVolume1Install Date: 6/15/2011 6:59:32 PMSystem Uptime: 12/15/2013 9:18:10 AM (0 hours ago).Motherboard: TOSHIBA | | Portable PCProcessor: Intel® Core i5 CPU M 520 @ 2.40GHz | rPGA988A Socket | 1316/mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 287 GiB total, 113.435 GiB free.D: is CDROM ().==== Disabled Device Manager Items =============.Class GUID:Description: Fingerprint SensorDevice ID: USB\VID_08FF&PID_168B\6&AECB780&0&2Manufacturer:Name: Fingerprint SensorPNP Device ID: USB\VID_08FF&PID_168B\6&AECB780&0&2Service:.==== System Restore Points ===================.RP1212: 9/16/2013 5:53:20 PM - Software Distribution Service 3.0RP1213: 9/17/2013 6:45:25 PM - System CheckpointRP1214: 9/18/2013 8:38:03 AM - Software Distribution Service 3.0RP1215: 9/18/2013 3:33:17 PM - Installed iCloudRP1216: 9/18/2013 4:32:27 PM - Installed Java 7 Update 40RP1217: 9/19/2013 8:35:46 AM - Software Distribution Service 3.0RP1218: 9/20/2013 8:35:49 AM - Software Distribution Service 3.0RP1219: 9/21/2013 8:35:57 AM - Software Distribution Service 3.0RP1220: 9/22/2013 1:37:49 AM - Software Distribution Service 3.0RP1221: 9/23/2013 2:24:24 AM - System CheckpointRP1222: 9/23/2013 7:24:53 PM - Software Distribution Service 3.0RP1223: 9/24/2013 10:14:35 PM - Software Distribution Service 3.0RP1224: 9/25/2013 1:06:16 PM - Restore OperationRP1225: 9/26/2013 1:10:04 PM - System CheckpointRP1226: 9/26/2013 1:17:50 PM - Software Distribution Service 3.0RP1227: 9/27/2013 1:15:21 PM - Software Distribution Service 3.0RP1228: 9/28/2013 1:11:01 PM - Software Distribution Service 3.0RP1229: 9/29/2013 2:07:54 AM - Software Distribution Service 3.0RP1230: 9/29/2013 1:07:33 PM - Software Distribution Service 3.0RP1231: 9/30/2013 1:02:51 PM - Software Distribution Service 3.0RP1232: 10/1/2013 12:59:01 PM - Software Distribution Service 3.0RP1233: 10/2/2013 12:54:59 PM - Software Distribution Service 3.0RP1234: 10/3/2013 1:53:14 PM - System CheckpointRP1235: 10/4/2013 7:34:44 AM - Software Distribution Service 3.0RP1236: 10/5/2013 8:20:48 AM - System CheckpointRP1237: 10/5/2013 4:24:35 PM - Software Distribution Service 3.0RP1238: 10/6/2013 2:14:23 AM - Software Distribution Service 3.0RP1239: 10/7/2013 2:54:43 AM - System CheckpointRP1240: 10/7/2013 3:57:26 PM - Software Distribution Service 3.0RP1241: 10/8/2013 3:52:37 PM - Software Distribution Service 3.0RP1242: 10/9/2013 3:55:22 PM - Software Distribution Service 3.0RP1243: 10/10/2013 3:00:27 AM - Software Distribution Service 3.0RP1244: 10/11/2013 3:46:18 AM - System CheckpointRP1245: 10/11/2013 3:51:44 AM - Software Distribution Service 3.0RP1246: 10/12/2013 3:47:54 AM - Software Distribution Service 3.0RP1247: 10/13/2013 2:06:07 AM - Software Distribution Service 3.0RP1248: 10/13/2013 3:44:23 AM - Software Distribution Service 3.0RP1249: 10/14/2013 3:00:19 AM - Software Distribution Service 3.0RP1250: 10/14/2013 3:39:39 AM - Software Distribution Service 3.0RP1251: 10/15/2013 4:03:27 AM - System CheckpointRP1252: 10/15/2013 4:43:17 PM - Software Distribution Service 3.0RP1253: 10/15/2013 5:50:31 PM - Software Distribution Service 3.0RP1254: 10/16/2013 2:17:02 PM - Installed Java 7 Update 45RP1255: 10/17/2013 3:32:13 PM - System CheckpointRP1256: 10/17/2013 4:37:00 PM - Software Distribution Service 3.0RP1257: 10/18/2013 4:33:31 PM - Software Distribution Service 3.0RP1258: 10/19/2013 4:29:16 PM - Software Distribution Service 3.0RP1259: 10/20/2013 1:53:20 AM - Software Distribution Service 3.0RP1260: 10/21/2013 2:16:42 AM - System CheckpointRP1261: 10/21/2013 4:19:49 PM - Software Distribution Service 3.0RP1262: 10/22/2013 4:15:46 PM - Software Distribution Service 3.0RP1263: 10/23/2013 4:16:58 PM - Software Distribution Service 3.0RP1264: 10/23/2013 4:33:00 PM - Software Distribution Service 3.0RP1265: 10/24/2013 5:05:18 PM - System CheckpointRP1266: 10/25/2013 5:07:40 PM - Software Distribution Service 3.0RP1267: 10/26/2013 5:13:58 PM - Software Distribution Service 3.0RP1268: 10/28/2013 9:25:57 AM - Software Distribution Service 3.0RP1269: 10/29/2013 3:37:24 PM - Software Distribution Service 3.0RP1270: 10/30/2013 3:33:25 PM - Software Distribution Service 3.0RP1271: 10/31/2013 3:30:14 PM - Software Distribution Service 3.0RP1272: 11/1/2013 3:25:45 PM - Software Distribution Service 3.0RP1273: 11/2/2013 3:21:17 PM - Software Distribution Service 3.0RP1274: 11/3/2013 12:38:13 AM - Software Distribution Service 3.0RP1275: 11/4/2013 1:19:30 AM - System CheckpointRP1276: 11/4/2013 7:30:43 AM - Software Distribution Service 3.0RP1277: 11/4/2013 7:42:34 AM - Software Distribution Service 3.0RP1278: 11/4/2013 7:53:36 AM - Software Distribution Service 3.0RP1279: 11/4/2013 2:26:35 PM - Software Distribution Service 3.0RP1280: 11/5/2013 2:30:58 PM - System CheckpointRP1281: 11/5/2013 9:45:37 PM - Software Distribution Service 3.0RP1282: 11/6/2013 9:49:23 PM - Software Distribution Service 3.0RP1283: 11/7/2013 10:07:32 PM - System CheckpointRP1284: 11/8/2013 8:11:38 AM - Software Distribution Service 3.0RP1285: 11/9/2013 8:06:49 AM - Software Distribution Service 3.0RP1286: 11/10/2013 1:36:48 AM - Software Distribution Service 3.0RP1287: 11/10/2013 8:02:41 AM - Software Distribution Service 3.0RP1288: 11/11/2013 7:58:18 AM - Software Distribution Service 3.0RP1289: 11/12/2013 7:54:47 AM - Software Distribution Service 3.0RP1290: 11/13/2013 8:08:33 AM - System CheckpointRP1291: 11/13/2013 9:54:26 AM - Software Distribution Service 3.0RP1292: 11/13/2013 10:12:53 AM - Software Distribution Service 3.0RP1293: 11/13/2013 10:24:35 AM - Software Distribution Service 3.0RP1294: 11/14/2013 10:24:02 AM - Software Distribution Service 3.0RP1295: 11/15/2013 10:37:32 AM - System CheckpointRP1296: 11/15/2013 2:11:19 PM - Software Distribution Service 3.0RP1297: 11/16/2013 2:23:39 PM - System CheckpointRP1298: 11/17/2013 1:42:51 AM - Software Distribution Service 3.0RP1299: 11/17/2013 10:24:39 AM - Software Distribution Service 3.0RP1300: 11/18/2013 10:20:27 AM - Software Distribution Service 3.0RP1301: 11/19/2013 10:16:16 AM - Software Distribution Service 3.0RP1302: 11/20/2013 10:11:51 AM - Software Distribution Service 3.0RP1303: 11/21/2013 11:05:08 AM - System CheckpointRP1304: 11/22/2013 9:06:29 AM - Software Distribution Service 3.0RP1305: 11/23/2013 9:02:00 AM - Software Distribution Service 3.0RP1306: 11/24/2013 1:54:00 AM - Software Distribution Service 3.0RP1307: 11/24/2013 8:57:24 AM - Software Distribution Service 3.0RP1308: 11/25/2013 8:53:02 AM - Software Distribution Service 3.0RP1309: 11/26/2013 8:48:58 AM - Software Distribution Service 3.0RP1310: 11/27/2013 8:44:49 AM - Software Distribution Service 3.0RP1311: 11/28/2013 8:24:03 AM - WD SmartWare InstallerRP1312: 11/28/2013 8:41:05 AM - Software Distribution Service 3.0RP1313: 11/29/2013 9:30:03 AM - System CheckpointRP1314: 11/29/2013 10:25:37 AM - Software Distribution Service 3.0RP1315: 11/30/2013 10:21:12 AM - Software Distribution Service 3.0RP1316: 12/1/2013 2:07:24 AM - Software Distribution Service 3.0RP1317: 12/1/2013 7:44:57 PM - Software Distribution Service 3.0RP1318: 12/2/2013 7:40:36 PM - Software Distribution Service 3.0RP1319: 12/3/2013 8:02:36 PM - System CheckpointRP1320: 12/4/2013 6:04:15 PM - Software Distribution Service 3.0RP1321: 12/5/2013 6:30:10 PM - System CheckpointRP1322: 12/6/2013 3:09:15 PM - Software Distribution Service 3.0RP1323: 12/7/2013 3:05:24 PM - Software Distribution Service 3.0RP1324: 12/8/2013 1:41:38 AM - Software Distribution Service 3.0RP1325: 12/8/2013 3:01:03 PM - Software Distribution Service 3.0RP1326: 12/9/2013 2:56:50 PM - Software Distribution Service 3.0RP1327: 12/10/2013 9:46:28 AM - Installed SmartLinkIV ZippersRP1328: 12/10/2013 2:52:46 PM - Software Distribution Service 3.0RP1329: 12/10/2013 7:02:04 PM - Removed PL-2303 USB-to-SerialRP1330: 12/10/2013 7:03:27 PM - Installed PL-2303 USB-to-SerialRP1331: 12/11/2013 3:00:21 AM - Software Distribution Service 3.0RP1332: 12/12/2013 3:28:30 AM - System CheckpointRP1333: 12/12/2013 3:34:22 AM - Software Distribution Service 3.0RP1334: 12/13/2013 3:29:58 AM - Software Distribution Service 3.0RP1335: 12/13/2013 8:11:46 AM - Software Distribution Service 3.0RP1336: 12/14/2013 8:32:14 AM - System CheckpointRP1337: 12/14/2013 12:42:47 PM - Software Distribution Service 3.0RP1338: 12/14/2013 6:34:52 PM - Installed Windows XP KB2618444.RP1339: 12/14/2013 6:44:39 PM - Restore OperationRP1340: 12/14/2013 6:59:04 PM - Restore OperationRP1341: 12/14/2013 7:07:07 PM - Restore OperationRP1342: 12/14/2013 7:13:40 PM - Restore OperationRP1343: 12/14/2013 7:25:48 PM - Restore OperationRP1344: 12/14/2013 7:30:47 PM - Software Distribution Service 3.0RP1345: 12/14/2013 7:57:07 PM - Installed Windows Internet Explorer 8.RP1346: 12/14/2013 9:10:33 PM - Software Distribution Service 3.0RP1347: 12/14/2013 11:17:20 PM - Software Distribution Service 3.0RP1348: 12/14/2013 11:19:39 PM - Removed Seagate Manager InstallerRP1349: 12/14/2013 11:23:15 PM - Removed Seagate DiscWizardRP1350: 12/15/2013 1:42:24 AM - Software Distribution Service 3.0.==== Installed Programs ======================.1&1 EasyLoginActron Scanning SuiteAdd-onsAdobe Flash Player 11 ActiveXAdobe Flash Player 11 PluginAdobe Reader 9.5.5Advanced IP Scanner v1.5Advanced Network DiagrammingAdvanced Network Diagramming HelpALPS Touch Pad DriverApple Application SupportApple Mobile Device SupportApple Software UpdateASUS WL-330N Wireless Router UtilitiesAXIS Media Control EmbeddedBejeweled 2 DeluxeBing Rewards Client InstallerBlock DiagramsBlock Diagrams HelpBlue Iris 3Bluetooth Stack for Windows by ToshibaBonjourBorders and BackgroundsBorders and Backgrounds HelpBrother MFL-Pro Suite MFC-J425WCAD Drawing DisplayCalibration Update WizardCallouts and ConnectorsCallouts and Connectors HelpCanon Easy-PhotoPrint EXCanon IJ Network ToolCanon MP Navigator EX 4.0Canon MP495 series MP DriversCanon MP495 series User RegistrationCanon My PrinterCanon Solution Menu EXCanoScan 4400FCarbonite Online Backup SetupChuzzle DeluxeCisco ConnectCitrix Online LauncherClip Art and SymbolsClip Art and Symbols HelpCool Timer 3.6CopyTrans Suite Remove OnlyCore FTP ProCore FTP Pro 2.1Coupon Printer for WindowsCraigsList Reader Pro by CraigsPal 4.6.8Custom Properties EditorDatabase DesignDatabase Design HelpDatabase WizardDeveloping Visio Solutions HelpDirectory ServicesDirectory Services HelpDLS 2002DLS 2002 North AmericaDLS 2002 PC5900 v1.0 DriverDLS 2002 Skyroute v2.3-2.4 DriverDLS 5 (Installer Version)DLS2002 2010 Event Buffer Fix DriverDLS2002 LCD5500Z v3.1 DriverDLS2002 PC1555 v3.2 Driver PackDLS2002 PC1555MX v2.3 DriverDLS2002 PC1616 v4.1 Driver PackDLS2002 PC1616 v4.1CP-01 Driver PackDLS2002 PC1616 v4.2 Driver PackDLS2002 PC1616 v4.2CP01 Driver PackDLS2002 PC1832 v4.1 Driver PackDLS2002 PC1832 v4.1CP-01 Driver PackDLS2002 PC1832 v4.2 Driver PackDLS2002 PC1832 v4.2CP01 Driver PackDLS2002 PC1864 v4.1 Driver PackDLS2002 PC1864 v4.1CP-01 Driver PackDLS2002 PC1864 v4.2 Driver PackDLS2002 PC1864 v4.2CP01 Driver PackDLS2002 PC4020 v3.3 DriverDLS2002 PC4020 v3.5 DriverDLS2002 PC5010 v3.2 Driver PackDLS2002 PC5132-433 v4.2NA DriverDLS2002 PC5950 v1.1 Driver PackDLS2002 PK5500 v1.1 Driver PackDLS2002 PK5500 v1.2 Driver PackDLS2002 PK55XX v1.0 Driver PackDLS2002 Practical Peripherals Support DriverDLS2002 RF5108 v1.0 DriverDLS2002 RF5132-433 v5.0NA Driver PackDLS2002 RF5132 v5.1 Driver PackDLS2002 RF5501 v5.0 DriverDLS2002 RFK5132 v5.1NA Driver PackDLS2002 RFK5132 v5.2 Driver PackDLS2002 RFK5132 v5.3 Driver PackDLS2002 SCW9045 v1.0 Driver PackDLS2002 SCW9047 v1.0 Driver PackDLS2002 SCW9047 v1.0CP-01 Driver PackDLS2002 Service Pack 2DLS2002 Tlink II DriverDLS2002 Web Update Add-InEscape Rosecliff IslandFileMaker Pro 11FileMaker Pro 12FitDay PC version 2.0floaters v2.1FlowchartsFlowcharts HelpForms and ChartsForms and Charts HelpGarmin City Navigator North America NT 2010.10Garmin Training CenterGarmin Training Center 3.4.3Garmin USB DriversGarmin WebUpdaterGoogle EarthGoogle Toolbar for Internet ExplorerGoogle Update HelperGoPro CineForm Studio 1.3.2GoToMeeting 6.0.0.1259Graphics FiltersHelp for Visio 2000 (HTML Help)HL-2270DWHotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)Hotfix for Windows XP (KB2443685)Hotfix for Windows XP (KB2570791)Hotfix for Windows XP (KB2633952)Hotfix for Windows XP (KB2756822)Hotfix for Windows XP (KB2779562)Hotfix for Windows XP (KB932716-v2)Hotfix for Windows XP (KB942288-v3)Hotfix for Windows XP (KB952287)Hotfix for Windows XP (KB953955)Hotfix for Windows XP (KB954550-v5)Hotfix for Windows XP (KB954708)Hotfix for Windows XP (KB961118)Hotfix for Windows XP (KB970653-v3)Hotfix for Windows XP (KB979306)HP Deskjet 3050A J611 series Basic Device SoftwareHP Deskjet 3050A J611 series HelpHP Deskjet 3050A J611 series Product Improvement StudyHP Photo CreationsHP UpdateiCloudIDAutomation.com Code 39 Free FontInstallVC90SupportIntel PROSet WirelessIntel® Management Engine ComponentsIntel® Network Connections DriversIntel® PROSet/Wireless WiFi SoftwareIntel® Rapid Storage TechnologyIntel® Turbo Boost Technology DriverInternet DiagramsInternet Diagrams HelpIP CameraIP Camera ToolISO RecorderiTunesJava 7 Update 45Java Auto UpdaterJava 6 Update 14Jewel Quest 3Jump DesktopJunk Mail filter updateLexmark Software UninstallLiveReg (Symantec Corporation)LiveUpdate 1.6 (Symantec Corporation)Malwarebytes Anti-Malware version 1.75.0.1300MapsMaps HelpMicrosoft .NET Framework 1.1Microsoft .NET Framework 1.1 Security Update (KB2698023)Microsoft .NET Framework 1.1 Security Update (KB2833941)Microsoft .NET Framework 2.0 Service Pack 2Microsoft .NET Framework 3.0 Service Pack 2Microsoft .NET Framework 3.5 SP1Microsoft .NET Framework 4 Client ProfileMicrosoft .NET Framework 4 ExtendedMicrosoft Application Error ReportingMicrosoft Choice GuardMicrosoft Compression Client Pack 1.0 for Windows XPMicrosoft Digital Image Pro 10Microsoft Kernel-Mode Driver Framework Feature Pack 1.7Microsoft Kernel-Mode Driver Framework Feature Pack 1.9Microsoft Office 2003 Web ComponentsMicrosoft Office 2007 Primary Interop AssembliesMicrosoft Office 2007 Service Pack 3 (SP3)Microsoft Office Access MUI (English) 2007Microsoft Office Access Setup Metadata MUI (English) 2007Microsoft Office Enterprise 2007Microsoft Office Excel MUI (English) 2007Microsoft Office File Validation Add-InMicrosoft Office Groove MUI (English) 2007Microsoft Office Groove Setup Metadata MUI (English) 2007Microsoft Office InfoPath MUI (English) 2007Microsoft Office OneNote MUI (English) 2007Microsoft Office Outlook MUI (English) 2007Microsoft Office PowerPoint MUI (English) 2007Microsoft Office Proof (English) 2007Microsoft Office Proof (French) 2007Microsoft Office Proof (Spanish) 2007Microsoft Office Proofing (English) 2007Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)Microsoft Office Publisher MUI (English) 2007Microsoft Office Shared MUI (English) 2007Microsoft Office Shared Setup Metadata MUI (English) 2007Microsoft Office Small Business Connectivity ComponentsMicrosoft Office Suite Activation AssistantMicrosoft Office Word MUI (English) 2007Microsoft Security ClientMicrosoft Security EssentialsMicrosoft SilverlightMicrosoft Software Update for Web Folders (English) 12Microsoft SQL Server 2005 Compact Edition [ENU]Microsoft SQL Server Native ClientMicrosoft SQL Server Setup Support Files (English)Microsoft SQL Server VSS WriterMicrosoft User-Mode Driver Framework Feature Pack 1.0Microsoft Visio 2000Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219Microsoft Visual Studio 2005 Tools for Office RuntimeMicrosoft Visual Studio Service Pack 3Mini-VCI Driver for TOYOTA TISMozilla Firefox 25.0.1 (x86 en-US)Mozilla Maintenance ServiceMSVCRTMSXML 4.0 SP2 (KB954430)MSXML 4.0 SP2 (KB973688)MSXML 4.0 SP2 Parser and SDKMSXML 4.0 SP3 ParserMSXML 4.0 SP3 Parser (KB2721691)MSXML 4.0 SP3 Parser (KB2758694)MSXML 4.0 SP3 Parser (KB973685)MSXML 6.0 ParserNetObjects Fusion 11.0NetSurveyor 2.0.9350.0Network DiagramsNetwork Diagrams HelpNitro PDF ProfessionalNorton PC CheckupNVIDIA DriversO2Micro OZ776 SCR DriverOffice LayoutOffice Layout HelpOrcaOrganization ChartsOrganization Charts HelpPage Layout WizardPL-2303 USB-to-SerialPMBPolar BowlerPrimoPDF -- brought to you by Nitro PDF SoftwareProgram FilesProgram Files HelpProgram Files ProfessionalProgram Files Professional HelpProgrammer for TA1232 - V1.00Project SchedulesProject Schedules HelpProperty Reporting WizardQuickBooksQuickBooks Pro 2011QuickTimeQuickVPN ClientRealtek High Definition Audio DriverRelease NotesRelease Notes ProfessionalRICOH R5U230 Media Driver ver.2.08.03.03Save as HTMLSecurity Update for CAPICOM (KB931906)Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188)Security Update for Microsoft .NET Framework 4 Extended (KB2487367)Security Update for Microsoft .NET Framework 4 Extended (KB2656351)Security Update for Microsoft .NET Framework 4 Extended (KB2736428)Security Update for Microsoft .NET Framework 4 Extended (KB2742595)Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2596754) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2596792) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2596825) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2596871) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2597969) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2597973) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2687439) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2687441) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2760411) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2760415) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2760585) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2760591) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2817641) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2827326) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2827329) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2850022) 32-Bit EditionSecurity Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit EditionSecurity Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit EditionSecurity Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit EditionSecurity Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit EditionSecurity Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit EditionSecurity Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit EditionSecurity Update for Microsoft Office Word 2007 (KB2827330) 32-Bit EditionSecurity Update for Microsoft Windows (KB2564958)Security Update for Windows Internet Explorer 8 (KB2510531)Security Update for Windows Internet Explorer 8 (KB2898785)Security Update for Windows Media Player (KB2378111)Security Update for Windows Media Player (KB2834904-v2)Security Update for Windows Media Player (KB2834904)Security Update for Windows Media Player (KB952069)Security Update for Windows Media Player (KB954155)Security Update for Windows Media Player (KB973540)Security Update for Windows Media Player (KB975558)Security Update for Windows Media Player (KB978695)Security Update for Windows Media Player 10 (KB936782)Security Update for Windows XP (KB2079403)Security Update for Windows XP (KB2115168)Security Update for Windows XP (KB2121546)Security Update for Windows XP (KB2229593)Security Update for Windows XP (KB2296011)Security Update for Windows XP (KB2347290)Security Update for Windows XP (KB2360937)Security Update for Windows XP (KB2387149)Security Update for Windows XP (KB2393802)Security Update for Windows XP (KB2412687)Security Update for Windows XP (KB2419632)Security Update for Windows XP (KB2423089)Security Update for Windows XP (KB2440591)Security Update for Windows XP (KB2443105)Security Update for Windows XP (KB2476490)Security Update for Windows XP (KB2476687)Security Update for Windows XP (KB2478960)Security Update for Windows XP (KB2478971)Security Update for Windows XP (KB2479943)Security Update for Windows XP (KB2481109)Security Update for Windows XP (KB2483185)Security Update for Windows XP (KB2485663)Security Update for Windows XP (KB2491683)Security Update for Windows XP (KB2503665)Security Update for Windows XP (KB2506212)Security Update for Windows XP (KB2506223)Security Update for Windows XP (KB2507618)Security Update for Windows XP (KB2507938)Security Update for Windows XP (KB2508272)Security Update for Windows XP (KB2508429)Security Update for Windows XP (KB2509553)Security Update for Windows XP (KB2524375)Security Update for Windows XP (KB2535512)Security Update for Windows XP (KB2536276-v2)Security Update for Windows XP (KB2536276)Security Update for Windows XP (KB2544893-v2)Security Update for Windows XP (KB2544893)Security Update for Windows XP (KB2555917)Security Update for Windows XP (KB2562937)Security Update for Windows XP (KB2566454)Security Update for Windows XP (KB2567053)Security Update for Windows XP (KB2567680)Security Update for Windows XP (KB2570222)Security Update for Windows XP (KB2570947)Security Update for Windows XP (KB2584146)Security Update for Windows XP (KB2585542)Security Update for Windows XP (KB2592799)Security Update for Windows XP (KB2598479)Security Update for Windows XP (KB2603381)Security Update for Windows XP (KB2618451)Security Update for Windows XP (KB2619339)Security Update for Windows XP (KB2620712)Security Update for Windows XP (KB2621440)Security Update for Windows XP (KB2624667)Security Update for Windows XP (KB2631813)Security Update for Windows XP (KB2633171)Security Update for Windows XP (KB2639417)Security Update for Windows XP (KB2641653)Security Update for Windows XP (KB2646524)Security Update for Windows XP (KB2647518)Security Update for Windows XP (KB2653956)Security Update for Windows XP (KB2655992)Security Update for Windows XP (KB2659262)Security Update for Windows XP (KB2660465)Security Update for Windows XP (KB2661637)Security Update for Windows XP (KB2676562)Security Update for Windows XP (KB2685939)Security Update for Windows XP (KB2686509)Security Update for Windows XP (KB2691442)Security Update for Windows XP (KB2695962)Security Update for Windows XP (KB2698365)Security Update for Windows XP (KB2705219)Security Update for Windows XP (KB2707511)Security Update for Windows XP (KB2709162)Security Update for Windows XP (KB2712808)Security Update for Windows XP (KB2718523)Security Update for Windows XP (KB2719985)Security Update for Windows XP (KB2723135)Security Update for Windows XP (KB2724197)Security Update for Windows XP (KB2727528)Security Update for Windows XP (KB2731847)Security Update for Windows XP (KB2753842-v2)Security Update for Windows XP (KB2753842)Security Update for Windows XP (KB2757638)Security Update for Windows XP (KB2758857)Security Update for Windows XP (KB2761226)Security Update for Windows XP (KB2770660)Security Update for Windows XP (KB2778344)Security Update for Windows XP (KB2779030)Security Update for Windows XP (KB2780091)Security Update for Windows XP (KB2799494)Security Update for Windows XP (KB2802968)Security Update for Windows XP (KB2807986)Security Update for Windows XP (KB2808735)Security Update for Windows XP (KB2813170)Security Update for Windows XP (KB2813345)Security Update for Windows XP (KB2820197)Security Update for Windows XP (KB2820917)Security Update for Windows XP (KB2829361)Security Update for Windows XP (KB2834886)Security Update for Windows XP (KB2839229)Security Update for Windows XP (KB2845187)Security Update for Windows XP (KB2847311)Security Update for Windows XP (KB2849470)Security Update for Windows XP (KB2850851)Security Update for Windows XP (KB2850869)Security Update for Windows XP (KB2859537)Security Update for Windows XP (KB2862152)Security Update for Windows XP (KB2862330)Security Update for Windows XP (KB2862335)Security Update for Windows XP (KB2864063)Security Update for Windows XP (KB2868038)Security Update for Windows XP (KB2868626)Security Update for Windows XP (KB2876217)Security Update for Windows XP (KB2876315)Security Update for Windows XP (KB2876331)Security Update for Windows XP (KB2883150)Security Update for Windows XP (KB2884256)Security Update for Windows XP (KB2892075)Security Update for Windows XP (KB2893294)Security Update for Windows XP (KB2893984)Security Update for Windows XP (KB2898715)Security Update for Windows XP (KB2900986)Security Update for Windows XP (KB923561)Security Update for Windows XP (KB941569)Security Update for Windows XP (KB946648)Security Update for Windows XP (KB950762)Security Update for Windows XP (KB950974)Security Update for Windows XP (KB951376-v2)Security Update for Windows XP (KB951748)Security Update for Windows XP (KB952004)Security Update for Windows XP (KB952954)Security Update for Windows XP (KB953155)Security Update for Windows XP (KB954459)Security Update for Windows XP (KB955069)Security Update for Windows XP (KB956572)Security Update for Windows XP (KB956744)Security Update for Windows XP (KB956802)Security Update for Windows XP (KB956803)Security Update for Windows XP (KB956844)Security Update for Windows XP (KB957097)Security Update for Windows XP (KB958644)Security Update for Windows XP (KB958687)Security Update for Windows XP (KB958869)Security Update for Windows XP (KB959426)Security Update for Windows XP (KB960225)Security Update for Windows XP (KB960803)Security Update for Windows XP (KB960859)Security Update for Windows XP (KB961371-v2)Security Update for Windows XP (KB961501)Security Update for Windows XP (KB969059)Security Update for Windows XP (KB969947)Security Update for Windows XP (KB970238)Security Update for Windows XP (KB970430)Security Update for Windows XP (KB970483)Security Update for Windows XP (KB971468)Security Update for Windows XP (KB971486)Security Update for Windows XP (KB971633)Security Update for Windows XP (KB971657)Security Update for Windows XP (KB972270)Security Update for Windows XP (KB973354)Security Update for Windows XP (KB973507)Security Update for Windows XP (KB973525)Security Update for Windows XP (KB973869)Security Update for Windows XP (KB973904)Security Update for Windows XP (KB974112)Security Update for Windows XP (KB974318)Security Update for Windows XP (KB974392)Security Update for Windows XP (KB974455)Security Update for Windows XP (KB974571)Security Update for Windows XP (KB975025)Security Update for Windows XP (KB975254)Security Update for Windows XP (KB975467)Security Update for Windows XP (KB975560)Security Update for Windows XP (KB975561)Security Update for Windows XP (KB975562)Security Update for Windows XP (KB975713)Security Update for Windows XP (KB977165)Security Update for Windows XP (KB977816)Security Update for Windows XP (KB977914)Security Update for Windows XP (KB978037)Security Update for Windows XP (KB978251)Security Update for Windows XP (KB978262)Security Update for Windows XP (KB978338)Security Update for Windows XP (KB978542)Security Update for Windows XP (KB978601)Security Update for Windows XP (KB978706)Security Update for Windows XP (KB979309)Security Update for Windows XP (KB979482)Security Update for Windows XP (KB979687)Security Update for Windows XP (KB980436)Security Update for Windows XP (KB981322)Security Update for Windows XP (KB981997)Security Update for Windows XP (KB982132)Security Update for Windows XP (KB982665)Segoe UIShape Explorer HelpSkype LauncherSmartLinkIV ZippersSoftware DesignSoftware Design HelpSolutionsSymantec pcAnywhereSysTools Access Password Recovery ToolT-Link ConsoleTansee iPhone Transfer SMS 5.3.0.0Techstream SoftwareTightVNC 2.0.2TL1 ServerTMaxI Usb DriverTOSHIBA Application and Driver InstallerTOSHIBA AssistTOSHIBA ConfigFreeTOSHIBA ControlsTOSHIBA Direct Disc WriterTOSHIBA Disc CreatorTOSHIBA Display Devices Change UtilityTOSHIBA DVD PLAYERTOSHIBA HDD ProtectionTOSHIBA HDD/SSD AlertTOSHIBA Hotkey Utility for Display DevicesTOSHIBA Internal Modem Region Select UtilityToshiba Laptop CheckupTOSHIBA Mobile Extension3Toshiba Online BackupTOSHIBA Password UtilityTOSHIBA PC Diagnostic ToolTOSHIBA PC Health MonitorTOSHIBA Power SaverTOSHIBA Quality ApplicationTOSHIBA Recovery Media CreatorTOSHIBA Security AssistTOSHIBA Service StationTOSHIBA Software ModemTOSHIBA TouchPad On/Off Utility V2.5.1.0TOSHIBA USB Sleep and Charge UtilityTOSHIBA UtilitiesTOSHIBA Web Camera ApplicationTOSHIBA Zooming UtilityToshibaRegistrationTuner Internet Update ApplicationTweak UIUbiquiti UniFi (remove only)Uninstall for TOSHIBA Mobile Extension3Update for 2007 Microsoft Office System (KB967642)Update for Microsoft .NET Framework 3.5 SP1 (KB963707)Update for Microsoft Office 2007 suites (KB2596620) 32-Bit EditionUpdate for Microsoft Office 2007 suites (KB2767849) 32-Bit EditionUpdate for Microsoft Office 2007 suites (KB2767916) 32-Bit EditionUpdate for Microsoft Office Outlook 2007 (KB2687404) 32-Bit EditionUpdate for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit EditionUpdate for Windows XP (KB2345886)Update for Windows XP (KB2541763)Update for Windows XP (KB2607712)Update for Windows XP (KB2616676)Update for Windows XP (KB2641690)Update for Windows XP (KB2661254-v2)Update for Windows XP (KB2718704)Update for Windows XP (KB2736233)Update for Windows XP (KB2749655)Update for Windows XP (KB2863058)Update for Windows XP (KB2904266)Update for Windows XP (KB898461)Update for Windows XP (KB951618-v2)Update for Windows XP (KB951978)Update for Windows XP (KB955759)Update for Windows XP (KB961503)Update for Windows XP (KB967715)Update for Windows XP (KB968389)Update for Windows XP (KB971029)Update for Windows XP (KB971737)Update for Windows XP (KB973687)Update for Windows XP (KB973815)Update for Windows XP (KB976749)VBAversion 1.0.5.8version 1.0.6.1Virtual FamiliesVirtual Villagers - The Secret CityVisioVisio Core FilesVLC media player 2.1.1WD Drive UtilitiesWD Quick ViewWD SecurityWD SmartWareWD SmartWare InstallerWebFldrs XPWildTangent GamesWildTangent ORB Game ConsoleWindows Driver Package - FTDI CDM Driver Package (07/12/2010 2.08.02)Windows Driver Package - Garmin (grmnusb) GARMIN Devices (03/08/2007 2.2.1.0)Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 )Windows Driver Package - Infineon Technologies AG (IFXTPM) System (12/14/2007 2.01.0001.00)Windows Driver Package - SPX Service Solutions, Inc (spxusb) Ports (13/04/2009 1.03)Windows Driver Package - SPX Service Solutions, Inc (usbser) Ports (01/07/2010 2.0.0)Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-RayWindows Genuine Advantage Notifications (KB905474)Windows Genuine Advantage Validation Tool (KB892130)Windows Internet Explorer 8Windows Live CallWindows Live Communications PlatformWindows Live EssentialsWindows Live MailWindows Live MessengerWindows Live Photo GalleryWindows Live Sign-in AssistantWindows Live SyncWindows Live Upload ToolWindows Live WriterWindows Management Framework CoreWindows Media Format 11 runtimeWindows Media Player 11Windows Rights Management Client with Service Pack 2WinRAR 4.01 (32-bit)WinZip 11.1Wireless HotkeyWModem Driver InstallerWondershare Video Converter Ultimate(Build 5.7.6.2)Wondershare Video Editor(Build 3.0.1)Zuma's Revenge.==== Event Viewer Messages From Past Week ========.12/8/2013 11:49:28 AM, error: Dhcp [1002] - The IP address lease 192.168.1.109 for the Network Card with network address 002314C124F0 has been denied by the DHCP server 192.168.1.200 (The DHCP Server sent a DHCPNACK message).12/15/2013 8:19:46 AM, error: DCOM [10005] - DCOM got error "%1068" attempting to start the service WDBackup with arguments "" in order to run the server: {81213AB4-5937-4340-88CD-66B4BC80DF73}12/15/2013 8:19:46 AM, error: DCOM [10005] - DCOM got error "%1068" attempting to start the service WDBackup with arguments "" in order to run the server: {59484148-65C9-4467-A092-3F8380023772}12/14/2013 9:44:23 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD atapi Fips intelppm IPSec MpFilter MRxSmb NetBIOS NetBT PCIIde RasAcd Rdbss Tcpip TMEI3E12/14/2013 9:44:23 PM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.12/14/2013 9:44:23 PM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.12/14/2013 9:44:23 PM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.12/14/2013 9:44:23 PM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.12/14/2013 9:44:23 PM, error: Service Control Manager [7001] - The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.12/14/2013 9:44:23 PM, error: Service Control Manager [7001] - The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.12/14/2013 9:43:58 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}12/14/2013 8:02:15 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the WD Backup service to connect.12/14/2013 8:02:15 PM, error: Service Control Manager [7000] - The WD Backup service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.12/14/2013 8:02:05 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the QBCFMonitorService service to connect.12/14/2013 7:20:30 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: atapi Fips intelppm MpFilter PCIIde TMEI3E12/14/2013 7:19:39 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}12/14/2013 3:35:04 PM, error: Dhcp [1002] - The IP address lease 192.168.1.104 for the Network Card with network address 002314C124F0 has been denied by the DHCP server 192.168.1.200 (The DHCP Server sent a DHCPNACK message).12/14/2013 11:09:04 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}12/11/2013 3:30:06 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: atapi PCIIde12/11/2013 3:30:01 AM, error: Service Control Manager [7000] - The Common Client Job Manager Service service failed to start due to the following error: The system cannot find the path specified.12/11/2013 3:27:56 AM, error: Print [23] - Printer Nitro PDF Creator failed to initialize because a suitable Nitro PDF Driver driver could not be found.12/10/2013 12:12:25 AM, error: Removable Storage Service [111] - RSM could not load media in drive Drive 0 of library TOSHIBA TOSHIBA USB DRV USB Device..==== End Of File =========================== Link to post Share on other sites More sharing options...
Maniac Posted December 15, 2013 ID:764782 Share Posted December 15, 2013 Hello T84A! My name is Borislav and I will be glad to help you solve your malware problem. Please note:If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.Make sure you read all of the instructions and fixes thoroughly before continuing with them.Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.Do not perform any kind of scanning and fixing without my instructions. If you want to proceed on your own, please let me know.Step 1 Please download Junkware Removal Tool to your desktop.Shut down your protection software now to avoid potential conflicts.Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.The tool will open and start scanning your system.Please be patient as this can take a while to complete depending on your system's specifications.On completion, a log (JRT.txt) is saved to your desktop and will automatically open.Post the contents of JRT.txt into your next message.Step 2 Please download AdwCleaner by Xplode onto your desktop.Close all open programs and internet browsers.Double click on AdwCleaner.exe to run the tool.Click on Clean.Confirm each time with Ok.Your computer will be rebooted automatically. A text file will open after the restart.Please post the content of that logfile with your next answer.You can find the logfile at C:\AdwCleaner\AdwCleaner[s0].txt as well.Step 3Launch Malwarebytes' Anti-MalwareGo to Update tab and select Check for Updates. If an update is found, it will download and install the latest version.Go to Scanner tab and select Perform Quick Scan, then click Scan.The scan may take some time to finish,so please be patient.When the scan is complete, click OK, then Show Results to view the results.Make sure that everything is checked, and click Remove Selected.When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.Copy&Paste the entire report in your next reply.Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer,please do so immediately. In your next reply, post the following log files:Junkware Removal Tool logAdwCleaner logMalwarebytes' Anti-Malware log Link to post Share on other sites More sharing options...
T84A Posted December 15, 2013 Author ID:764805 Share Posted December 15, 2013 Thanks. I'm not sure what constitutes "paying customer" but I am using the paid (PRO) version. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Junkware Removal Tool (JRT) by ThisisuVersion: 6.0.8 (11.05.2013:1)OS: Microsoft Windows XP x86Ran by Kenneth Earle on Sun 12/15/2013 at 10:57:26.93~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Services~~~ Registry ValuesSuccessfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\searchprotectSuccessfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayNameSuccessfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL~~~ Registry KeysSuccessfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbhoSuccessfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho.1Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{562B9317-C08A-444A-9482-62080DD851AE}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\addonsframework.dllSuccessfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\buttonsite.dllSuccessfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\scripthost.dllSuccessfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduitSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduitsearchscopesSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\pricegongSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\searchprotectSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\smartbarSuccessfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonicSuccessfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduitSuccessfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\searchprotectSuccessfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3279418Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{71E09C3E-DD49-4A3F-BD15-D9CB9FB33C3E}Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b7c7d4b0-7a84-4b73-a7ef-48ef59a52c3b}Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{b7c7d4b0-7a84-4b73-a7ef-48ef59a52c3b}~~~ FilesSuccessfully deleted: [File] "C:\Program Files\mozilla firefox\plugins\npcouponprinter.dll"Successfully deleted: [File] "C:\Program Files\mozilla firefox\plugins\npmozcouponprinter.dll"Successfully deleted: [File] "C:\end"~~~ FoldersSuccessfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\conduit"Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\partner"Successfully deleted: [Folder] "C:\Documents and Settings\Kenneth Earle\Application Data\pccustubinstaller"Successfully deleted: [Folder] "C:\Documents and Settings\Kenneth Earle\Application Data\searchprotect"Successfully deleted: [Folder] "C:\Documents and Settings\Kenneth Earle\Local Settings\Application Data\conduit"Successfully deleted: [Folder] "C:\Program Files\conduit"Successfully deleted: [Folder] "C:\Program Files\coupons"Successfully deleted: [Folder] "C:\Program Files\searchprotect"~~~ FireFoxSuccessfully deleted: [File] C:\Documents and Settings\Kenneth Earle\Application Data\mozilla\firefox\profiles\ze6g6fdu.default-1359054047765\searchplugins\conduit.xmlSuccessfully deleted the following from C:\Documents and Settings\Kenneth Earle\Application Data\mozilla\firefox\profiles\ze6g6fdu.default-1359054047765\prefs.jsuser_pref("CT3279418.smartbar.homepage", "true");user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");user_pref("browser.search.defaultthis.engineName", "appbario19 Customized Web Search");user_pref("smartbar.addressBarOwnerCTID", "CT3279418");user_pref("smartbar.defaultSearchOwnerCTID", "CT3279418");user_pref("smartbar.homePageOwnerCTID", "CT3279418");user_pref("smartbar.machineId", "OJE0UNGOOQP510BYEMIHY7ICIUVORM/JXDJENGBXIDAFUJETSN5932AFRJQXGYMIXNSQPVVBMM1BFMWRK8WQFG");Emptied folder: C:\Documents and Settings\Kenneth Earle\Application Data\mozilla\firefox\profiles\ze6g6fdu.default-1359054047765\minidumps [10 files]~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Scan was completed on Sun 12/15/2013 at 11:03:11.51End of JRT log~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # AdwCleaner v3.015 - Report created 15/12/2013 at 11:04:57# Updated 10/12/2013 by Xplode# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)# Username : Kenneth Earle - KEE-TECRA# Running from : C:\Documents and Settings\Kenneth Earle\Desktop\AdwCleaner.exe# Option : Clean***** [ Services ] ********** [ Files / Folders ] *****Folder Deleted : C:\Program Files\appbario19Folder Deleted : C:\DOCUME~1\KENNET~1\LOCALS~1\Temp\boost_interprocessFolder Deleted : C:\DOCUME~1\KENNET~1\LOCALS~1\Temp\TempDirFolder Deleted : C:\Documents and Settings\Kenneth Earle\Local Settings\Application Data\appbario19Folder Deleted : C:\Documents and Settings\Kenneth Earle\Application Data\Mozilla\Firefox\Profiles\ze6g6fdu.default-1359054047765\CT3279418Folder Deleted : C:\Documents and Settings\Kenneth Earle\Application Data\Mozilla\Firefox\Profiles\ze6g6fdu.default-1359054047765\Extensions\{b7c7d4b0-7a84-4b73-a7ef-48ef59a52c3b}File Deleted : C:\Program Files\Mozilla Firefox\browser\nsprotector.js***** [ Shortcuts ] ********** [ Registry ] *****Key Deleted : HKCU\ToolbarKey Deleted : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLLKey Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DLS_IV_Installer_VersionKey Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Tansee iPhone Transfer SMS_is1Key Deleted : HKLM\SOFTWARE\200821140405180805011820Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D69D4A8D-DF31-4CDC-BE2C-44065A4CB5C7}Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E4A994B0-5550-4680-A4C6-B9470B888069}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B7C7D4B0-7A84-4B73-A7EF-48EF59A52C3B}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D69D4A8D-DF31-4CDC-BE2C-44065A4CB5C7}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B7C7D4B0-7A84-4B73-A7EF-48EF59A52C3B}Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D69D4A8D-DF31-4CDC-BE2C-44065A4CB5C7}Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6EF51D18-3D46-47AA-AB49-4891503E9190}Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B9877CC2-A326-4659-BEBB-6C0F32F0BD5D}Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{B7C7D4B0-7A84-4B73-A7EF-48EF59A52C3B}]Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{B7C7D4B0-7A84-4B73-A7EF-48EF59A52C3B}]Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{B7C7D4B0-7A84-4B73-A7EF-48EF59A52C3B}]Key Deleted : HKCU\Software\appbario19Key Deleted : HKLM\Software\appbario19Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtectKey Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536***** [ Browsers ] *****-\\ Internet Explorer v8.0.6001.18702-\\ Mozilla Firefox v25.0.1 (en-US)[ File : C:\Documents and Settings\Kenneth Earle\Application Data\Mozilla\Firefox\Profiles\ze6g6fdu.default-1359054047765\prefs.js ]*************************AdwCleaner[R0].txt - [4509 octets] - [15/12/2013 11:04:27]AdwCleaner[s0].txt - [4135 octets] - [15/12/2013 11:04:57]########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [4195 octets] ########## Malwarebytes Anti-Malware (PRO) 1.75.0.1300www.malwarebytes.orgDatabase version: v2013.12.15.03Windows XP Service Pack 3 x86 NTFSInternet Explorer 8.0.6001.18702Kenneth Earle :: KEE-TECRA [administrator]Protection: Enabled12/15/2013 11:26:48 AMmbam-log-2013-12-15 (11-26-48).txtScan type: Quick scanScan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUMScan options disabled: P2PObjects scanned: 254766Time elapsed: 27 minute(s), 53 second(s)Memory Processes Detected: 0(No malicious items detected)Memory Modules Detected: 0(No malicious items detected)Registry Keys Detected: 0(No malicious items detected)Registry Values Detected: 0(No malicious items detected)Registry Data Items Detected: 0(No malicious items detected)Folders Detected: 0(No malicious items detected)Files Detected: 11C:\Documents and Settings\Kenneth Earle\Local Settings\Temp\nsi84.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Documents and Settings\Kenneth Earle\Local Settings\Temp\SPStub.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Documents and Settings\Kenneth Earle\Local Settings\Temp\nsr97.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Documents and Settings\Kenneth Earle\Local Settings\Temp\nsv9C.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Documents and Settings\Kenneth Earle\Local Settings\Temp\nsz8A.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Documents and Settings\Kenneth Earle\Local Settings\Temporary Internet Files\Content.IE5\8V7T4SSN\appbario19[1].exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Documents and Settings\Kenneth Earle\Local Settings\Temporary Internet Files\Content.IE5\8V7T4SSN\conduitinstaller[1].exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Documents and Settings\Kenneth Earle\Local Settings\Temporary Internet Files\Content.IE5\FDOQKYST\SPSetup[1].exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Documents and Settings\Kenneth Earle\Local Settings\Temporary Internet Files\Content.IE5\O4SDMCK0\appbario19[1].exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Documents and Settings\Kenneth Earle\Local Settings\Temporary Internet Files\Content.IE5\O4TKQ0V7\statisticsstub[1].exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.C:\Documents and Settings\Kenneth Earle\Local Settings\Temporary Internet Files\Content.IE5\O4TKQ0V7\checktbexist[1].exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.(end) Link to post Share on other sites More sharing options...
Maniac Posted December 15, 2013 ID:764901 Share Posted December 15, 2013 I'm not sure what constitutes "paying customer" but I am using the paid (PRO) version. Exactly. Step 1 Download TFC to your desktopOpen the file and close any other windows.It will close all programs itself when run, make sure to let it run uninterrupted.Click the Start button to begin the process. The program should not take long to finish its jobOnce its finished it should reboot your machine, if not, do this yourself to ensure a complete cleanStep 2 Please scan your machine with ESET OnlineScanHold down Control and click on the following link to open ESET OnlineScan in a new window. ESET OnlineScanClick the button.For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your Desktop.Double click on the to download the ESET Smart Installer. icon on your Desktop.Check "YES, I accept the Terms of Use."Click the Start button.Accept any security warnings from your browser.Under Scan Settings, check "Scan Archives" and "Remove found threats" Click Advanced settings and select the following:Scan potentially unwanted applicationsScan for potentially unsafe applicationsEnable Anti-Stealth technologyESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.When the scan completes, click List ThreatsClick Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.Click the Back button.Click the Finish button. Link to post Share on other sites More sharing options...
T84A Posted December 15, 2013 Author ID:764912 Share Posted December 15, 2013 It looks like my laptop locked up running TFC. Please advise. Thanks Link to post Share on other sites More sharing options...
T84A Posted December 15, 2013 Author ID:764920 Share Posted December 15, 2013 Ran it in safe mode. More in a minute. Link to post Share on other sites More sharing options...
Maniac Posted December 16, 2013 ID:765050 Share Posted December 16, 2013 Run them into Safe mode with Networking. Link to post Share on other sites More sharing options...
T84A Posted December 16, 2013 Author ID:765062 Share Posted December 16, 2013 C:\AdwCleaner\Quarantine\C\Documents and Settings\Kenneth Earle\Local Settings\Application Data\appbario19\ldrtbappb.dll.vir a variant of Win32/Toolbar.Conduit.P application cleaned by deleting - quarantinedC:\AdwCleaner\Quarantine\C\Documents and Settings\Kenneth Earle\Local Settings\Application Data\appbario19\tbappb.dll.vir a variant of Win32/Toolbar.Conduit.B application cleaned by deleting - quarantinedC:\AdwCleaner\Quarantine\C\Program Files\appbario19\ldrtbappb.dll.vir a variant of Win32/Toolbar.Conduit.P application cleaned by deleting - quarantinedC:\AdwCleaner\Quarantine\C\Program Files\appbario19\tbappb.dll.vir a variant of Win32/Toolbar.Conduit.B application cleaned by deleting - quarantinedC:\AdwCleaner\Quarantine\C\Program Files\Mozilla Firefox\browser\nsprotector.js.vir Win32/Conduit.SearchProtect.A application cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\Application Data\speedtest137\install_helper.exe Win32/bProtector.H application cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\Local Settings\Temp\file_to_run.exe Win32/ChatZum.A application cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\Local Settings\Temp\install_helper.exe Win32/bProtector.H application cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\Local Settings\Temp\SpeedTestSetup.exe a variant of Win32/InstallBrain.BH application cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\Local Settings\Temporary Internet Files\Content.IE5\O4SDMCK0\taskinst18[1].exe Win32/ChatZum.A application cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\Downloads\cbsidlm-tr1_5-NetSurveyor-10882471.exe multiple threats cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\Downloads\Integrated_CT2776682.exe multiple threats cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\Downloads\Programs\ashampoo_home_designer_pro_1.0.0_sm.exe a variant of Win32/Toolbar.Conduit.B application cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\Downloads\Programs\brother91.exe Win32/Spy.IamBigBrother.91 trojan cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\Downloads\Programs\ctimer.exe a variant of Win32/Toolbar.Conduit.B application cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\Downloads\Programs\eb60setup.exe a variant of Win32/Urlbot.NAM trojan cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\Downloads\Programs\media.player.codec.pack.v3.9.2.setup.exe Win32/Toolbar.Widgi application cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\Downloads\Programs\Setup_FreeFlvConverterN.exe Win32/Toolbar.Widgi application cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\Downloads\Programs\SoftonicDownloader_for_webcam-saver.exe a variant of Win32/SoftonicDownloader.E application cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\Downloads\Programs\Unlocker1.9.1.exe multiple threats cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\Downloads\Programs\iPhone\SoftonicDownloader73850.exe Win32/SoftonicDownloader.A application cleaned by deleting - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\MozBackup\Firefox 4.0.1 (en-US) - 2011-06-14.pcv JS/SecurityDisabler.A.Gen application deleted - quarantinedC:\Documents and Settings\Kenneth Earle\My Documents\Old Firefox Data\user.js JS/SecurityDisabler.A.Gen application cleaned by deleting - quarantinedC:\Program Files\Speed Test 137\AddonsFramework.Typelib.dll a variant of Win32/Toolbar.Besttoolbars.H application cleaned by deleting - quarantinedC:\Program Files\Speed Test 137\AddonsFramework.Typelib64.dll a variant of Win32/Toolbar.Besttoolbars.H application cleaned by deleting - quarantinedC:\Program Files\Speed Test 137\ButtonSite.dll a variant of Win32/Toolbar.Besttoolbars.H application cleaned by deleting - quarantinedC:\Program Files\Speed Test 137\ButtonSite64.dll a variant of Win32/Toolbar.Besttoolbars.H application cleaned by deleting - quarantinedC:\Program Files\Speed Test 137\ScriptHost.dll a variant of Win32/Toolbar.Besttoolbars.H application cleaned by deleting - quarantinedC:\Program Files\Speed Test 137\ScriptHost64.dll a variant of Win32/Toolbar.Besttoolbars.H application cleaned by deleting - quarantined Link to post Share on other sites More sharing options...
T84A Posted December 16, 2013 Author ID:765065 Share Posted December 16, 2013 I have the red shield with the X and Windows Security says my Anti Virus if off even though MSE is active and running. Link to post Share on other sites More sharing options...
Maniac Posted December 16, 2013 ID:765071 Share Posted December 16, 2013 Please download the Kaspersky Virus Removal Tool from here to your Desktop. Double-click the Removal Tool. Click the cog in the upper right corner: Select down to and including your main drive. Once done please select the Automatic Scan tab and press Start Scan. Allow AVP to delete all infections found. Once it has finished select the Report tab. Select the Detected threats report from the left and press the Save button. Save it to your Desktop and post the contents in your next reply. Link to post Share on other sites More sharing options...
T84A Posted December 16, 2013 Author ID:765092 Share Posted December 16, 2013 Thanks. Its running. It says its going to take another 11 hours. I need to work today. How do I stop and restart later? Link to post Share on other sites More sharing options...
Maniac Posted December 16, 2013 ID:765096 Share Posted December 16, 2013 Just close the program. Link to post Share on other sites More sharing options...
T84A Posted December 16, 2013 Author ID:765233 Share Posted December 16, 2013 No threats found!! What next? Thanks Link to post Share on other sites More sharing options...
T84A Posted December 17, 2013 Author ID:765449 Share Posted December 17, 2013 Good day. Do I need to run any other scans to confirm this process worked? Thanks Link to post Share on other sites More sharing options...
Maniac Posted December 17, 2013 ID:765481 Share Posted December 17, 2013 How are things now? Link to post Share on other sites More sharing options...
T84A Posted December 17, 2013 Author ID:765482 Share Posted December 17, 2013 Cool. Thanks. Donation sent. Should I do any more scans Link to post Share on other sites More sharing options...
Maniac Posted December 17, 2013 ID:765484 Share Posted December 17, 2013 Thank you! No, some final steps for you: Step 1Download OTC to your desktop and run itClick Yes to beginning the Cleanup process and remove these components, including this application.You will be asked to reboot the machine to finish the Cleanup process. Choose Yes.Step 2Double click on AdwCleaner.exe to run the tool.Click on UninstallConfirm with YesStep 3 Please uninstall ESET Online Scanner and manually delete Kaspersky AVP . Step 4 Some malware preventions: users.telenet.be/bluepatchy/miekiemoes/prevention.html Safe surfing! Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted December 28, 2013 Root Admin ID:769769 Share Posted December 28, 2013 Glad we could help. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Thanks! Link to post Share on other sites More sharing options...
Recommended Posts